Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/vK6_4fdq1Q2Uz5epAkjhlv4BWqQ.roa
File: vK6_4fdq1Q2Uz5epAkjhlv4BWqQ.roa (raw, json)
Hash identifier: YGhCVrTQFfRcU5GFpvjPwUZ9k8KZwhLcWrTaX9H7gEw=
Subject key identifier: BC:AE:BF:E1:F7:6A:D5:0D:94:CF:97:A9:02:48:E1:96:FE:01:5A:A4
Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Certificate serial: 01856F4B80F437CA08335E41A4414DDC1967
Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/vK6_4fdq1Q2Uz5epAkjhlv4BWqQ.roa
Signing time: Sun 01 Jan 2023 21:44:57 +0000
ROA not before: Sun 01 Jan 2023 21:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198504
IP address blocks: 185.204.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:80:f4:37:ca:08:33:5e:41:a4:41:4d:dc:19:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Validity
Not Before: Jan 1 21:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcaebfe1f76ad50d94cf97a90248e196fe015aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ad:9e:81:eb:a2:0e:db:18:80:84:b8:1d:75:
74:01:4c:ed:f2:d0:b4:c2:76:aa:c2:43:f5:ac:b2:
46:af:03:00:64:d5:71:69:39:0c:6b:97:78:86:37:
1b:b9:76:2d:37:27:d9:53:ed:4f:90:c0:80:4d:74:
ac:cd:eb:6f:02:7c:3e:d6:ee:4b:5a:66:dc:62:25:
9e:27:7f:46:88:15:2c:dc:1a:5a:59:d1:57:bd:76:
b6:28:eb:f4:cd:9f:0f:59:aa:75:94:80:80:8a:ae:
31:7a:6f:de:29:69:15:24:6c:5b:f9:b3:16:25:c6:
53:50:cd:f0:94:4e:8e:ea:e9:07:04:ad:63:c6:6b:
73:85:16:bc:56:7c:ba:4d:5b:5a:77:a0:24:5b:31:
25:59:3e:25:7a:4e:53:da:c9:c2:65:e0:11:dd:a4:
53:90:e9:ef:d9:48:5b:38:e3:ee:5b:93:fe:e1:2f:
f5:ae:fa:c8:f6:ee:1d:15:f2:a8:9e:fe:c0:93:cf:
63:1c:d0:2c:ff:4b:17:8d:a7:4e:7a:ee:09:0e:32:
18:6c:2d:b7:c4:55:b5:6f:05:a1:7b:63:ed:c9:db:
54:a0:82:e7:66:f2:e2:3a:14:80:a8:ed:dd:67:0c:
f6:f3:79:48:cf:8e:2c:ef:51:b4:3b:6f:76:a2:14:
3c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AE:BF:E1:F7:6A:D5:0D:94:CF:97:A9:02:48:E1:96:FE:01:5A:A4
X509v3 Authority Key Identifier:
keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/vK6_4fdq1Q2Uz5epAkjhlv4BWqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.228.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ab:59:e5:52:23:e6:b7:3d:cf:90:0d:ba:f3:d6:33:39:0a:
c5:d0:3b:df:4f:58:7f:19:ef:ba:e9:68:d2:01:d0:9c:af:d4:
fb:2f:95:77:f1:ec:3f:bc:ad:09:e6:a6:36:af:54:80:76:1f:
84:2d:d5:e8:08:10:ca:33:6a:85:47:6f:4c:6a:9b:0c:9f:e6:
fc:bf:8d:ee:2a:80:0c:e6:47:00:21:5a:d2:e2:96:87:7c:45:
98:27:b1:cc:24:44:ef:8d:e5:ac:4a:82:a4:89:5a:a6:d8:d5:
e7:86:fe:d3:af:34:95:8a:5f:9e:78:27:35:c8:59:3d:2a:49:
d1:c1:f2:e3:f6:51:01:b1:19:c0:46:6c:cd:5a:5b:66:6e:74:
1a:c5:16:45:06:cf:c0:23:ff:6a:80:f4:b5:f3:1c:3c:21:6f:
a2:07:ba:b8:65:e2:1f:d3:f6:e6:ae:2e:08:e0:27:9b:6f:e0:
d1:7e:91:d9:3b:f4:66:5c:77:4d:b1:a4:82:08:00:e9:25:38:
ce:45:99:61:28:da:24:fe:fc:16:1d:c4:68:5c:86:a2:6b:a1:
5e:7c:0e:66:e5:f8:e1:4d:d6:e2:66:41:93:82:66:29:4d:0d:
1b:61:86:4f:e9:f2:8e:da:5c:ba:d7:00:da:96:44:31:48:e5:
51:6e:44:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:53 2024 by rpki-client on console-ams.rpki-client.org